Update Rank Math if you haven’t yet 1.0.218 – Authenticated (Contributor+) Stored Cross-Site Scripting

[ad_1]

“The Rank Math SEO with AI Best SEO Tools plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter in versions up to, and including, 1.0.218 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.” -Wordfence

[https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/seo-by-rank-math/rank-math-seo-with-ai-best-seo-tools-10218-authenticated-contributor-stored-cross-site-scripting#:\~:text=The%20Rank%20Math%20SEO%20with,input%20sanitization%20and%20output%20escaping.](https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/seo-by-rank-math/rank-math-seo-with-ai-best-seo-tools-10218-authenticated-contributor-stored-cross-site-scripting#:~:text=The%20Rank%20Math%20SEO%20with,input%20sanitization%20and%20output%20escaping)

[ad_2]
2 Comments

  1. Solid Security Plugin did that for me automatically.

    There is a setting called : auto update plugins if it fixes a vunerability.

 

This site will teach you how to build a WordPress website for beginners. We will cover everything from installing WordPress to adding pages, posts, and images to your site. You will learn how to customize your site with themes and plugins, as well as how to market your site online.

Buy WordPress Transfer